JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.97.169.1

209.97.169.1 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.97.169.1

Whois 209.97.169.1

IP Abuse Reports for 209.97.169.1:

This IP address has been reported a total of 20 times from 9 distinct sources. 209.97.169.1 was first reported on October 19th 2022, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 penjaga BRIN	2024-03-11 16:02:07 (2 years ago)	Multiple web server 503 error code (Service unavailable).-111	Brute-Force
🇮🇩 hermawan	2024-03-09 00:38:46 (2 years ago)	[Sat Mar 09 07:38:42.322814 2024] [security2:error] [pid 76076:tid 124988491302464] [client 209.97.1 ... show more [Sat Mar 09 07:38:42.322814 2024] [security2:error] [pid 76076:tid 124988491302464] [client 209.97.169.1:54766] [client 209.97.169.1] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_methods}" against "REQUEST_METHOD" required. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-911-METHOD-ENFORCEMENT.conf"] [line "47"] [id "911100"] [msg "Method is not allowed by policy"] [data "Matched Data: found within REQUEST_METHOD: PUT request_line = PUT /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272/220/274"] [tag "PCI/12.1"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php"] [unique_id "ZeuvkpMfBASc8QEqAfYdeAAAAD0"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[76124] [HBXChze ... show less	Hacking Web App Attack
🇮🇩 Incidents Response Neptus Team	2024-03-08 02:41:00 (2 years ago)	Report Abuse IP	Hacking Exploited Host Web App Attack
🇮🇩 Incidents Response Neptus Team	2024-03-07 02:42:00 (2 years ago)	Report Abuse IP	DDoS Attack Hacking Exploited Host Web App Attack
🇲🇾 JKT - Sality Killer	2024-02-28 02:04:00 (2 years ago)	ANJING BANGSAT BABI >>> WEB ATTACK	Brute-Force Web App Attack
🇮🇩 hermawan	2024-02-27 08:03:10 (2 years ago)	[Tue Feb 27 15:01:39.136331 2024] [authz_core:error] [pid 1007860:tid 127670197159488] [client 209.9 ... show more [Tue Feb 27 15:01:39.136331 2024] [authz_core:error] [pid 1007860:tid 127670197159488] [client 209.97.169.1:64829] AH01630: client denied by server configuration: /usr/lib/cgi-bin/alfacgiapi [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1007904] [xC+Xb4Cx1IA] [Zd2W4vLRqboHkN2QnlLK9AAAAQA] keep_alive=[0] [2024-02-27 15:01:39.136630] [R:Zd2W4vLRqboHkN2QnlLK9AAAAQA] UA:'Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36' Host:'staklim-jatim.bmkg.go.id' COOKIE:'fb66df88cff4414b0afe6309464db212=7o7maj6ti3ljb975cc0jkhouc4' ACCEPT:'text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.9' Accept-Encoding:'gzip, deflate ... show less	Hacking Web App Attack
🇮🇩 hermawan	2024-02-23 08:53:11 (2 years ago)	[Fri Feb 23 15:53:09.269917 2024] [security2:error] [pid 186423:tid 135670163048000] [client 209.97. ... show more [Fri Feb 23 15:53:09.269917 2024] [security2:error] [pid 186423:tid 135670163048000] [client 209.97.169.1:57612] [client 209.97.169.1] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_methods}" against "REQUEST_METHOD" required. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-911-METHOD-ENFORCEMENT.conf"] [line "47"] [id "911100"] [msg "Method is not allowed by policy"] [data "Matched Data: found within REQUEST_METHOD: PUT request_line = PUT /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272/220/274"] [tag "PCI/12.1"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php"] [unique_id "Zdhc9XDBWDI_82bUfatnHgAAAG4"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[186470] [KdRss ... show less	Hacking Web App Attack
🇮🇩 hermawan	2024-02-23 03:42:21 (2 years ago)	[Fri Feb 23 10:42:17.982471 2024] [security2:error] [pid 62473:tid 136738622146112] [client 209.97.1 ... show more [Fri Feb 23 10:42:17.982471 2024] [security2:error] [pid 62473:tid 136738622146112] [client 209.97.169.1:59071] [client 209.97.169.1] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_methods}" against "REQUEST_METHOD" required. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-911-METHOD-ENFORCEMENT.conf"] [line "47"] [id "911100"] [msg "Method is not allowed by policy"] [data "Matched Data: found within REQUEST_METHOD: PUT request_line = PUT /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272/220/274"] [tag "PCI/12.1"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php"] [unique_id "ZdgUGbZFsRhBQYaAFJAMWQAAAV4"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[62510] [Veq4WFy ... show less	Hacking Web App Attack
🇮🇩 Burayot	2024-02-22 11:18:12 (2 years ago)	LF_APACHE_403: 209.97.169.1 (SG/Singapore/-), more than 20 Apache 403 hits in the last 3600 secs	Web App Attack
🇮🇩 Incidents Response Neptus Team	2024-02-22 08:49:00 (2 years ago)	Report Abuse IP	Hacking Exploited Host Web App Attack
🇮🇩 hermawan	2024-02-22 03:14:01 (2 years ago)	[Thu Feb 22 10:13:59.002530 2024] [security2:error] [pid 149205:tid 127131782743616] [client 209.97. ... show more [Thu Feb 22 10:13:59.002530 2024] [security2:error] [pid 149205:tid 127131782743616] [client 209.97.169.1:52615] [client 209.97.169.1] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_methods}" against "REQUEST_METHOD" required. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-911-METHOD-ENFORCEMENT.conf"] [line "47"] [id "911100"] [msg "Method is not allowed by policy"] [data "Matched Data: found within REQUEST_METHOD: PUT request_line = PUT /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272/220/274"] [tag "PCI/12.1"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php"] [unique_id "Zda7934ShdVIFJNP8nRkfQAAATI"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[149248] [KECd1 ... show less	Hacking Web App Attack
🇮🇩 hermawan	2024-02-15 23:01:58 (2 years ago)	[Fri Feb 16 06:01:55.090554 2024] [security2:error] [pid 264478:tid 128844520490560] [client 209.97. ... show more [Fri Feb 16 06:01:55.090554 2024] [security2:error] [pid 264478:tid 128844520490560] [client 209.97.169.1:49838] [client 209.97.169.1] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_methods}" against "REQUEST_METHOD" required. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-911-METHOD-ENFORCEMENT.conf"] [line "47"] [id "911100"] [msg "Method is not allowed by policy"] [data "Matched Data: found within REQUEST_METHOD: PUT request_line = PUT /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272/220/274"] [tag "PCI/12.1"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php"] [unique_id "Zc6X434EfcDtQxhs6Cg8sQAAAaQ"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[264520] [gTYcn ... show less	Hacking Web App Attack
🇮🇩 hermawan	2024-02-15 12:53:43 (2 years ago)	[Thu Feb 15 19:53:39.522574 2024] [security2:error] [pid 723790:tid 130586310084160] [client 209.97. ... show more [Thu Feb 15 19:53:39.522574 2024] [security2:error] [pid 723790:tid 130586310084160] [client 209.97.169.1:64200] [client 209.97.169.1] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_methods}" against "REQUEST_METHOD" required. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-911-METHOD-ENFORCEMENT.conf"] [line "47"] [id "911100"] [msg "Method is not allowed by policy"] [data "Matched Data: found within REQUEST_METHOD: PUT request_line = PUT /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272/220/274"] [tag "PCI/12.1"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php"] [unique_id "Zc4JU8R3BTW4gOtQIYdlGwAAAcU"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[723865] [dCnOH ... show less	Hacking Web App Attack
🇮🇩 Burayot	2024-02-15 07:58:23 (2 years ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 209.97.169.1 (SG/Singapore/-): 2 in ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 209.97.169.1 (SG/Singapore/-): 2 in the last 3600 secs show less	Web App Attack
🇨🇭 Kepler-1649c	2022-10-20 04:21:51 (3 years ago)	ZGrab.Scanner	Port Scan

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 171.36.6.200

🇵🇭 122.52.57.141

🇨🇳 121.40.231.19

🇺🇸 91.230.168.239

🇺🇸 66.132.172.139

🇺🇸 64.62.156.97

🇨🇳 42.120.74.226

🇧🇷 4.228.83.28

🇮🇳 206.1.62.130

🇳🇱 195.178.110.188

🇮🇩 143.20.49.38

🇩🇪 134.209.254.118

🇲🇦 102.53.15.17

🇷🇺 95.25.17.218

🇬🇧 89.37.172.158

🇺🇿 84.54.71.206

🇺🇸 17.22.253.89

🇻🇳 14.187.100.71

🇺🇸 207.90.244.4

🇩🇪 176.100.36.222